Back to candidate list
Default Avatar
Candidate Name
Cyber GRC Analyst
Victoria, Melbourne, Australia
Summary

Information Security (IS) & GRC Analyst with 3 years of experience including IS audits and risk assessments using security frameworks. Led IS risk assessments for 45 clients as well as an internal audit for current employer.
_________________________________

ACHIEVEMENTS

★ Completed an IS audit and risk assessment for current employer, gaining approval to launch a project implementing controls and a GRC framework (Essential Eight)

★ Developed an IS risk assessment service, delivered to 45 clients

★ Automated sys admin tasks and processes (AD, Exchange, SharePoint)

★ Master of Information Systems, Bachelor of Computer Science, CompTIA Security Plus 601 certified

★ Multiple academic awards incl. 2018 Melbourne School of Engineering Scholarship (Uni. of Melbourne)
_________________________________

INFORMATION SECURITY + GRC

► Applied knowledge of Essential Eight, NIST SP 800, ISO27005, OCTAVE, and CMM.

► Evaluated ICT infrastructure, vendors, policy, processes, and procedures. Conducted interviews through to senior exec-level.

► Led audits and provided findings and recommendations to stakeholders.

► Designed processes for risk assessments and assessed baseline security controls (Essential Eight) such as multifactor authentication, OS patching, application hardening, Microsoft data protection controls.

► Created a yearly security report, reviewed HR & security policies and vendor lists, wrote a cybersecurity awareness article and risk assessment process documents.
_________________________________

PROFESSIONAL SKILLS

► 3 years using business analysis methodology incl. requirement gathering and process modelling (BPMN).

► Roles in 7+ projects. Delivered projects as a lead and managed solo projects (planning, scheduling, reporting).

► Worked with engineers, field staff, developers, clients, senior execs and 3 years in customer-facing roles.
_________________________________

IDENTITY & ACCESS MANAGEMENT
AD, Multifactor Authentication, Password Management, Auditing & Reporting, Authorisation Service

SYS ADMIN & RMM
ConnectWise Manage, ConnectWise Automate, Webroot, Ninja RMM, Windows OS, Office 365 Security - Microsoft Secure Score & Compliance Manager, HTML, PowerShell

METHODOLOGIES & STANDARDS
NIST-SP 800-30, ITIL, COBIT, Essential Eight, BPMN, NIST CSF, ISO27001

PRODUCTIVITY
Canva, Microsoft 365, SharePoint Online, Trello, Teams, Confluence, Zoom

Work experience
01/10/2022
GRC Analyst
01/06/2016
01/10/2016
Graduate Software Analyst
01/07/2014
01/09/2014
Information Technology Intern
Education & certifications
01/01/2018
01/01/2019
Master's Degree
Information Systems
01/01/2012
01/01/2015
Bachelor's Degree
Computer Science
Based in Victoria
Holds Australian visa
Skills
Cybersecurity Penetration Testing Network Security Information Security Vulnerability Assessment Security Risk Assessment Team Collaboration Problem Solving Governance Security Governance Security Compliance Compliance

You need to log in as an employer to view full candidate details.

Connect with us

© State Government of Victoria 2025.

TalentConnect platform is powered by Cturtle.